Blog

Blog

Silent Ransom Group: What You Need to Know

By Graham Cluley on Thu, 06/11/2026

What Is the Silent Ransom Group?Silent Ransom Group (also known as SRG, Luna Moth, Chatty Spider, Storm-0252, and UNC3753) is a financially-motivated cybercrime gang that has been stealing data from companies and demanding payment.So, It's a Ransomware Gang Then?Well, not in the traditional sense. Most people when they think of ransomware still think of malicious hackers breaking into a company's...

Blog

From Floppy Disks to AI: Rethinking Ransomware Defense for a New Era

By Cary Hudgins on Wed, 06/10/2026

Build a stronger ransomware defense strategy. Discover how AI-driven attacks work and the critical steps to protect your organization now.

Blog

June 2026 Patch Tuesday Analysis

By Tyler Reguly on Tue, 06/09/2026

A record-breaking Patch Tuesday brings 568 CVEs. Tyler Regulg breaks down the most critical vulnerabilities, including a high-risk HTTP.sys RCE, and what security teams need to watch for potential exploitation.

Blog

DSPM for AI: A Practical Look at AI Data Security

By Jill Johnson on Fri, 06/05/2026

By now, you've probably heard the airplane analogy when it comes to AI and cybersecurity. If not, cybersecurity for AI has been likened to a plane being assembled while airborne. This is a fitting visual as many of us are trying to keep up with something that is already taken off. With this same analogy, you can start to think of data as the plane fuel. No one really knows what's in the tank at...

Blog

Meta's Own AI Chatbot to Blame for Instagram Accounts Being Stolen in Seconds

By Graham Cluley on Thu, 06/04/2026

Hackers have been hijacking Instagram accounts at scale by exploiting Meta's AI support chatbot. And, as if that weren't bad enough, the technique required no technical skill whatsoever.When we think about accounts being taken over, we often imagine something of at least some level of sophistication: a credential stuffing attack, a phishing campaign, a SIM-swap, or call center workers being bribed...

Blog

BEC Global Insights Report: May 2026

By JT Newby on Wed, 06/03/2026

Discover key May 2026 BEC threat insights from Fortra Intelligence & Research Experts (FIRE), including a 16% increase in overall attack volume from the prior month.

Blog

BEC: Why This Basic Threat Is Difficult to Detect

By Cybersecurity Experts at Fortra on Tue, 06/02/2026

Business email compromise is a form of phishing that involves social engineering to masquerade as executives for personal gain.

Blog

RatPressto Phish Kit

By Aranzazu Casillas on Thu, 05/28/2026

Learn how the RatPressto phishing kit exploits compromised WordPress sites to deploy ScreenConnect RATs through Adobe-themed social engineering attacks.

Blog

CSPM vs DSMP (or Both): How to Think About Cloud Security

By Jill Johnson on Tue, 05/26/2026

As organizations continue moving workloads, applications, and sensitive data into the cloud, security teams face a growing challenge: protecting both the infrastructure and the data that lives within it.That’s where cloud security posture management (CSPM) and data security posture management (DSPM) come in. While the two technologies are closely related, they solve different problems. CSPM...

Blog

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

By Heather Wiederhoeft on Fri, 05/22/2026

Explore Fortra’s The Art of Security podcast and its take on cyber hygiene, vulnerability management, supply chain attacks, and modern cybersecurity risk.

Blog

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

By Graham Cluley on Thu, 05/21/2026

For almost 20 years, stolen credentials have been the most common route for attackers into organizations, according to the Verizon Data Breach Investigations Report (DBIR). But that's no longer the case.According to the newly published 2026 report, exploitation of vulnerabilities has overtaken credential theft as the leading vector for hackers to gain their initial access — accounting for 31% of...

Blog

Fortra Patch Priority Index for April 2026

By Lane Thames on Tue, 05/19/2026

Get the latest Patch Priority Index from Fortra which highlights critical Microsoft and Google vulnerabilities, covering Edge, Office, Windows, .NET, and key server components.

Blog

Agentic AI's Affordability Gap Is a Security Problem

By Josh Taylor on Mon, 05/18/2026

The first agentic SOC products entering trial or are in early access phases are already metering investigations by token consumption and rate-limiting how many an organization can run per hour. Enterprise buyers can absorb this. Mid-market companies, public sector agencies, and critical infrastructure operators running lean security programs cannot, and they face the same threat landscape.

Blog

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

By Daud Jawad on Thu, 05/14/2026

Fortra FIRE uncovers a sophisticated phishing campaign combining ConsentFix and CalPhishing to bypass defenses, exploit trusted workflows, and steal Microsoft credentials — highlighting why calendar-based attacks are becoming the preferred delivery method.

Blog

Getting to Know Goher Mohammad, CISO at L&Q

By Joe Pettit on Thu, 05/14/2026

Goher Mohammad’s path into cybersecurity may feel familiar, and for good reason. Starting in IT, then moving into risk and compliance before stepping into security leadership, his journey followed the same path that played out in the industry. We recently spoke with Goher about how the CISO role is evolving, what it takes to lead through an incident, and the challenges of securing organizations...

Blog

May 2026 Patch Tuesday Analysis

By Tyler Reguly on Tue, 05/12/2026

This Patch Tuesday Analysis addresses Microsoft’s April 2026 Security Updates. Fortra Intelligence and Research Experts are actively working on coverage for these vulnerabilities.

Blog

BEC Global Insights Report: April 2026

By JT Newby on Mon, 05/11/2026

Discover key April 2026 BEC threat insights from Fortra Intelligence & Research Experts (FIRE), including a 151% surge in attack volume, increased cryptocurrency scams, advanced fee fraud trends, rising wire transfer requests, and evolving email tactics used by cybercriminals.

Photo of the top of a globe with Southeast Asia in focus, with a green thumbtack centered on Indonesia

Blog

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

By Jill Johnson on Fri, 05/08/2026

Indonesia's newest Personal Data Protection Law is set to go into effect in October 2024. Here's what you need to know to prepare for proper compliance.

Blog

One in Eight UK Workers Has Sold Their Company Passwords, and Bosses Think it's Fine

By Graham Cluley on Fri, 05/08/2026

It's all very well defending your organization from external hackers and malware attacks, but your systems are only as strong as the people to whom you have handed the keys.According to new research, an uncomfortable number of people appear willing to sell critical credentials and passwords to the highest bidder.The Workplace Fraud Trends report, published by Cifas, claims that an eyebrow-raising...

Blog

Interview with Troy Hunt: Getting Excited About AI for All the Right Reasons. And Knowing Where to Draw the Line.

By Dan Raywood on Wed, 05/06/2026

Coming from a security lens, skepticism about AI is the default. With last week’s Mythos debacle hardly in the rearview, the attitude is only reinforced. I recently had the chance to sit down with Troy Hunt and pick his brain on the subject. What he had to offer was surprising, and (dare I say) refreshing. While we can never stop asking “how is this going to hurt us,” a myopic view of the...

1
2
3
4
5
6
7
8
9
…
Next page
Last page

Silent Ransom Group: What You Need to Know

From Floppy Disks to AI: Rethinking Ransomware Defense for a New Era

June 2026 Patch Tuesday Analysis

DSPM for AI: A Practical Look at AI Data Security

Meta's Own AI Chatbot to Blame for Instagram Accounts Being Stolen in Seconds

BEC Global Insights Report: May 2026

BEC: Why This Basic Threat Is Difficult to Detect

RatPressto Phish Kit

CSPM vs DSMP (or Both): How to Think About Cloud Security

Inside The Art of Security Podcast: Cybersecurity in the Age of Trust, Risk, and Complexity

Defenders Fall Behind, as AI Rewrites the Rules of a Data Breach

Fortra Patch Priority Index for April 2026

Agentic AI's Affordability Gap Is a Security Problem

New Calendar Invite Phishing Campaign: ICS Abuse and Post-Delivery Persistence

Getting to Know Goher Mohammad, CISO at L&Q

May 2026 Patch Tuesday Analysis

BEC Global Insights Report: April 2026

Navigating Indonesia’s Personal Data Protection Law: Key Takeaways for Organizations

One in Eight UK Workers Has Sold Their Company Passwords, and Bosses Think it's Fine

Interview with Troy Hunt: Getting Excited About AI for All the Right Reasons. And Knowing Where to Draw the Line.

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Fortra AI Use

Impressum